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— The MAILING DATE of this communication appears on the cover sheet with the correspondence address— 

All claims being allowable, PROSECUTION ON THE MERITS IS (OR REMAINS) CLOSED in this application. If not included 
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NOTICE OF ALLOWABILITY IS NOT A GRANT OF PATENT RIGHTS. This application is subject to withdrawal from issue at the initiative 
of the Office or upon petition by the applicant. See 37 CFR 1.313 and MPEP 1308. 
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EXAMINER'S AMENDMENT 

An examiner's amendment to the record appears below. Should the changes and/or 
additions be unacceptable to applicant, an amendment may be filed as provided by 37 CFR 
1.3 12. To ensure consideration of such an amendment, it MUST be submitted no later than the 
payment of the issue fee. 

Authorization for this examiner's amendment was given in a telephone interview with 
William J. James, Reg. No. 40,661 on 7/28/2004. 
1. Replace claims 1,35 and 37 with: 

1 . A method for providing security for a computer network, comprising: 
generating content sets for a computer associated with the network; determining 
whether a user should be routed to the generated content sets; selecting one of the 
content sets if it is determined that the user should be routed to the generated 
content sets; routing the user to a network interface associated with the selected 
generated content set; monitoring the activities of the user with respect to the 
computer; preventing the user from accessing files associated with said 
monitoring; and preventing the user from accessing processes associated with said 
monitoring; wherein each generated content set is associated with one or more 
network interfaces associated only with that generated content set. 



35. A system for providing security for a computer network, comprising: a 
computer configured to generate content sets for the computer, wherein the 
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computer is associated with the network; a plurality of network interfaces each 
associated with one of the content sets; and a network device configured to 
determine whether a user should be routed to the generated content sets, select 
one of the generated content sets if it is determined that the user should be routed 
to the generated content, and to route the user to a network interface associated 
with the selected generated content set; monitor the activities of the user with 
respect to the computer; prevent the user from accessing files associated with said 
monitoring; and prevent the user from accessing processes associated with said 
monitoring; wherein each generated content set is associated with one or more 
network interfaces associated only with that generated content set. 

37. A computer program product for providing security for a computer 
network comprising a computer usable medium having machine readable code 
embodied therein for generating content sets for a computer associated with the 
network; determining whether a user should be routed to the generated content 
sets; selecting one of the generated content sets if it is determined that the user 
should be routed to the generated content sets; and routing the user to a network 
interface associated with the selected generated content set; monitoring the 
activities of the user with respect to the computer; preventing the user from 
accessing files associated with said monitoring; and preventing the user from 
accessing processes associated with said monitoring; wherein each generated 
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content set is associated with one or more network interfaces associated only with 
that generated content set. 

2. Cancel claims 2,3 and 4. 

. ,.. Examiner's Statement of Reasons for Allowance 

3. Claims 1,5,6,8-30,35-37 are allowed over prior art. 

4. This action is in reply to applicant's correspondence of 02 July 2004. 

5. The objection to the specification is withdrawn. 

6. The following is an examiner's statement of reasons for the indication of allowable 
claimed subject matter. 

7. As per claims 1,35 and 37, prior art of record, NETWORK ASSOCIATES, "Network 
Associates Ships Cybercop Sting", Network Associates Incorporated, 16 July 1999, ("NAI") 
http://www. serverwatch. com/news/print. php/1 39904 1 , entire article, paper 5, item Q, and, 
STAGGS, MICHAEL "IDS RE: cybercop sting", University of Wollongong, Austrailia 
("Staggs") via Web site http://www.shmoo.com/mail/ids/oct99/msg00467.html , 8 October 1999, 
entire article, paper 5, item J, (See MPEP 213 1.01, paragraph III for multiple reference rejection 
criteria, where Staggs is inherent in NAI) fails to teach, alone, or in combination, of; 

(claim 1) "A method for providing security for a computer network, comprising: 
generating content sets for a computer associated with the network; determining whether a user 
should be routed to the generated content sets; selecting one of the content sets if it is determined 
that the user should be routed to the generated content sets; routing the user to a network 
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interface associated with the selected generated content set; monitoring the activities of the user 
with respect to the computer; preventing the user from accessing files associated with said 
monitoring; and preventing the user from accessing processes associated with said monitoring; 
wherein each generated content set is associated with one or more network interfaces associated 
only with that generated content set." and; 

(claim 35) "A system for providing security for a computer network, comprising: a 
computer configured to generate content sets for the computer, wherein the computer is 
associated with the network; a plurality of network interfaces each associated with one of the 
content sets; and a network device configured to determine whether a user should be routed to 
the generated content sets, select one of the generated content sets if it is determined that the user 
should be routed to the generated content, and to route the user to a network interface associated 
with the selected generated content set; monitor the activities of the user with respect to the 
computer; prevent the user from accessing fries associated with said monitoring; and prevent the 
user from accessing processes associated with said monitoring; wherein each generated content 
set is associated with one or more network interfaces associated only with that generated content 
set." and; 

(claim 37) "A computer program product for providing security for a computer network 
comprising a computer usable medium having machine readable code embodied therein for 
generating content sets for a computer associated with the network; determining whether a user 
should be routed to the generated content sets; selecting one of the generated content sets if it is 
determined that the user should be routed to the generated content sets; and routing the user to a 
network interface associated with the selected generated content set; monitoring the activities of 
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the user with respect to the computer; preventing the user from accessing files associated with 
said monitoring; and preventing the user from accessing processes associated with said 
monitoring; wherein each generated content set is associated with one or more network 
interfaces associated only with that generated content set". 

The italicized above claim elements dealing with "monitoring the activities of the user 
with respect to the computer; preventing the user from accessing files associated with said 
monitoring; and preventing the user from accessing processes associated with said monitoring; 
wherein each generated content set is associated with one or more network interfaces associated 
only with that generated content sef serving to patently distinguish the invention from prior art. 
Specifically, the use of generated content set associated with one network interface associated 
only with a generated content set is taught in the prior art. However, as per the applicants 
arguments in the previous remarks in Amendment A (July 02, 2004), the examiner finds the 
applicant's arguments to be persuasive in that; "Cybercop Sting uses a single network interface 
to emulate a virtual network, with network addresses (e.g., IP addresses) associated with virtual 
systems on the virtual network all being routed to the same network interface. ... By contrast, 
claim 1 recites routing the user to a network interface associated with the selected generated 
content set wherein each generated content set is associated with one or more network 
interfaces associated only with that generated content set." in the context of monitoring the 
activities of the user (with respect to the computer), preventing user file and process access 
patently distinguishes the invention from prior art. 

Dependent claims 5,6,8-30,36 are allowable by virtue of their dependencies. 
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Conclusion 



8. 



Any inquiry concerning this communication or earlier communications from examiner 



should be directed to Ronald Baum, whose telephone number is (703) 305-4276. The examiner 
can normally be reached Monday through Friday from 8:00 AM to 5:30 PM. 
_ , If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ayaz Sheikh, can be reached at (703) 305-9648. The Fax number for the organization 
where this application is assigned is 703-872-9306. 

Ronald B aum ^ ststS <- * 



Patent Examiner 




